Details

Updated openssh packages that resolve an issue are now available for Red HatEnterprise Linux 5.

OpenSSH is OpenBSD's SSH (Secure Shell) protocol implementation. These packagesinclude the core files necessary for both the OpenSSH client and server.

These updated openssh packages fix the following bug:

* When Federal Information Processing Standards (FIPS) mode was enabled on asystem, key-based authentication was always unsuccessful. This was caused by thenewly introduced pubkey_key_verify() verification function, which did not takeinto consideration the fact that it was running in a FIPS environment. With thisupdate, the pubkey_key_verify() function has been modified to respect FIPS, andauthentication using an RSA key is now successful without any issues when FIPSmode is enabled. (BZ#730652)

All users of openssh are advised to upgrade to these updated packages, whichresolve this issue.

Solution

Before applying this update, make sure all previously-released erratarelevant to your system have been applied.